CVE-2023-33938 Stored XSS with object name in App Builder
CVE-2023-33939 Stored XSS in Modified Facet
CVE-2023-33944 XSS with container layout fragment URL
CVE-2023-33945 SQL injection in SQL Server upgrades
Security advisories for Liferay's enterprise offerings (e.g., Liferay DXP) are only listed here since 2023. Historial advisories are availabe in the Help Center.